Vulnerability Details CVE-2007-4361
NETGEAR (formerly Infrant) ReadyNAS RAIDiator before 4.00b2-p2-T1 beta creates a default SSH root password derived from the hardware serial number, which makes it easier for remote attackers to guess the password and obtain login access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.034
EPSS Ranking 87.0%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/26442
- http://securityreason.com/securityalert/3017
- http://www.infrant.com/forum/viewtopic.php?t=12249
- http://www.infrant.com/forum/viewtopic.php?t=12313
- http://www.infrant.com/forum/viewtopic.php?t=3366&start=30
- http://www.osvdb.org/36357
- http://www.securityfocus.com/archive/1/476266/100/0/threaded
- http://www.securityfocus.com/bid/25290
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36011
- http://secunia.com/advisories/26442
- http://securityreason.com/securityalert/3017
- http://www.infrant.com/forum/viewtopic.php?t=12249
- http://www.infrant.com/forum/viewtopic.php?t=12313
- http://www.infrant.com/forum/viewtopic.php?t=3366&start=30
- http://www.osvdb.org/36357
- http://www.securityfocus.com/archive/1/476266/100/0/threaded
- http://www.securityfocus.com/bid/25290
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36011
Products affected by CVE-2007-4361
-
cpe:2.3:h:netgear:readynas_raidiator:3.01c1-p1
-
cpe:2.3:h:netgear:readynas_raidiator:3.01c1-p6